Manualshelf

HP-UX Workload Manager User's Guide

ManualsBrandsHP ManualsSoftwareHP-UX 11i Workload Management (gWLM/WLM) Software
241242243244245246247248249250
Configuring WLM
Securing WLM communications
Chapter 5244
Securing WLM communications
When you start WLM using the /sbin/init.d/wlm script, the script uses
secure mode by default. (However, if you are upgrading WLM and the
/etc/rc.config.d/wlm script had been modified prior to the upgrade, the
default might not be secure mode. Ensure that the secure mode variables
discussed in the following discussion are enabled.) To use secure mode,
you must distribute security certificates to all systems or partitions
being managed by the same WLM global arbiter (wlmpard). For more
information on using security certificates and other tasks necessary to
enable secure communications, see wlmcert(1M). This and other WLM
manpages are also available at the following Web site:
http://www.hp.com/go/wlm
The communications mode is determined by the following variables in
the file /etc/rc.config.d/wlm:
WLMD_SECURE_ENABLE
WLMPARD_SECURE_ENABLE
WLMCOMD_SECURE_ENABLE
If necessary, you can change the settings for these variables so that
communications are not secured by default at reboot. (HP recommends
using secure communications.)
To manually activate a daemon (wlmd, wlmpard, or wlmcomd) to run in
secure mode, you can use the -s option with the daemons. If you run
WLM’s global arbitration without secured communications, use it only on
trusted local area networks.